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(57) Abstract 

The present invention is an apparatus and method for executing instructions in a system management mode in a processor-based 
system. The apparatus comprises a memory for storing instruction sequences by which the processor-based system is processed where 
the memory includes a system management random access memory (SMRAM). The apparatus also comprises a processor having a system 
address space, that executes the stored instruction sequences. The stored instruction sequences include process steps to cause the processor 
to: (a) configure the processor to operate in a protected mode while in a system management mode, the processor operating at address 
greater than one megabyte; (b) invoice a paging feature of the processor; (c) configure the processor to operate in a virtual mode; and 
(d) process the instnictioti sequences; wherein the process steps occur upon the receipt of an instruction to process a system management 
request 
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METHOD AND APPARATUS FOR PROVIDING EXECUTION OF SYSTEM MANAGEMENT MODE SERVICES IN 
VIRTUAL MODE 

1. • Field of the Invention 

The present invention relates generally to memory in 
microcontroller-based systems, and more particularly to an 
5 apparatus and method of executing system management mode 
services in the virtual mode. 

2* Description of the Related Art 

Modern computers based on the personal computer 
architecture may perform power management or other system 
management functions by employing an operating mode of the Intel 
x86 family of microprocessors, known as the System Management 
Mode (SMM) . SMM can be used by the system firmware to control 
product-specific hardware features in a manner which is 
transparent to the operating system and applications software. 
SMM may be used, for example, for system management information 
such as the system configuration or the configuration of a 
powered-down device, or to invoke a power-saving routine such as 
a zero-volt suspend function. 

The SMM is invoked through an SMI, which typically executes 
20 slowly, as compared to the rate of normal code execution. This 
is because SMIs typically operate below the 1 Megabyte boundary 
in an uncached memory area. This feature is implemented in 

1 
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order to avoid cache conflict with overlapping memory. During 
the occurrence of the SMI, the CPU executes in the SMM mode 
which is exactly like real mode except the segment limits extend 
to 4 Gbytes rather than just 64 Kbytes for data accesses. Code 
5 execution addressability is still limited to only 1 Megabyte. 
Such an approach results in limited system performance. 

One alternate approach involves the transfer of SMI code 
and data, whenever an SMI is invoked, from a cacheable region 
above the 1 Megabyte boundary to a cacheable region below the 1 
.10 Megabyte boundary. Execution of the SMI will then occur in 

standard SMM mode, and the SMI code is transferred back to the^ 
cacheable region above the 1 Megabyte area upon completion of 
the SMI. Such an approach takes significant time and therefore 
results in reduced system performance. 

15 Accordingly, there is a need in the technology for an 

apparatus and'tnethod for overcoming the aforementioned problems. 
In particular, there is a need for an apparatus and method for 
efficient and secure execution, of system management interrupt 
service code in a cached area without having to rewrite existing 

20 software. 



2 
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BRIEF SUMMARY OF THE TNVENTTOyF 

The present invention is an apparatus and method for 
executing instructions in a system management mode in a 
processor-based system. The apparatus comprises a memory for 
5 storing instruction sequences by which the processor-based 

system is processed. The apparatus also comprises a processor 
having a system address space, that executes the stored 
instruction sequences. The stored instruction sequences include 
process steps to cause the processor to: (a) configure the 
10 processor to operate in a protected mode while in a system 

management mode, the processor operating at an address greater 
than one megabyte; (c) invoke a paging feature of the processor; 

(d) configure the processor to operate in a virtual mode; and 

(e) process the instruction sequences stored, wherein the 
15 process steps occur upon the receipt of an instruction to 

process a system management request. 



3 
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BRIEF DESCRIPTION OF THE DRAWINGS 



Figure 1 illustrates an exemplary processor system which 
implements the processes o£ the present invention. 



Figure 2A illustrates an exemplary system address map 50 
5 for the processor system of Figure 1. 



Figure 2B illustrates an exemplary layout of SMRAM 20. 



Figures 3A - 3G illustrate the registers of one embodiment 
of the CPU 14. 



Figure 4 illustrates one embodiment of the I/O bit map 
10 utilized in the present invention. 

Figure 5 illustrates the mapping of data and code stored in 
SMRAM from physical memory to the CPU address space, 

Figure 6 illustrates the transfer of control to a segment** 
of memory through the execution of a NEAR JMP operation, in 
15 accordance with the principles of the present invention. 

Figures 7A and 7B are flowcharts illustrating one 
embodiment of the process of the present invention. 



4 
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nTrrr ^TT.FD DESCRIPTIO N OF THE PREFERRED INVENTION 

The present invention creates a virtual monitor that 
runs under the system management mode (SMM) with memory 
paging enabled to execute SMI code in virtual mode. The 
5 virtual mode operation allows the SMM code that was written 
(for SMM mode that had to run below 1 Megabyte) to execute 
above the 1 Megabyte boundary. In particular, the entire 
SMI handler is mapped above the 1 Megabyte boundary and 
power management code is executed as a page-enabled, 
10 protected mode virtual task within SMM mode. With the SMI 
handler code in a completely separate memory space, cache 
flushes would be unnecessary when entering the SMM, since 
memory usage with the regular system would not overlap. 

The present embodiment is described in reference to a 
15 processor system 10. Figure 1 illustrates an exemplary 
processor system 10 which implements the processes of the 
present invention. Within the processor system 10, bus 
transactions are performed via a system data bus 12 between a 
processor or central processing unit (CPU) 14 and a system 
20 memory 18, a System Management Random Access Memory (SMRAM) 20, 
a video memory 22, and various I/O and peripheral modules such 
as a disk drive controller 24 and a network controller 26. The 
CPU 14 is coupled via a system address bus 30 and a CPU control 
signal line 32 to a memory controller 28 and a bus controller 
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36. The memory controller 34 is in turn coupled to the system 
memory 18 and SMRAM 20. 

The memory controller 34 provides memory address via lines 
38 and memory control signals via lines 40 to the system memory 
5 ' 18 and SMRAM 20 to enable data transfers between the system 
memory 18 or SMRAM 20 and the CPU 14 via system data bus 12. 
The CPU 14 is also coupled via the system address bus 30, system 
data bus 12 and CPU control signal line 32 to the bus controller 
36, which is in turn coupled via a buffered address bus '42 and a 

10 buffered data bus 44 to the video memory 22, disk drive • 
controller 24, the network controller 26 and any other 
peripheral device. The processor system 10 may be implemented 
as a. desktop conputer, a notebook computer or a server. The 
memory controller 34 and other system logic are typically 

15 integrated into what is termed a chipset to provide power 

management BIOS services. Examples of such chipsets include the 
Falconer chipset manufactured by Seiko-Epson under the part 
designations SPC8210 and SPC8220. Other examples of such 
chipsets include the INTEL 430TX, INTEL 430HX, and INTEL 440BX 

20 chipsets . 

In one embodiment, the CPU 14 is the Intel 486 
microprocessor marketed by Intel Corporation. In an alternate 
embodiment, the CPU 14 may be the K-6 microprocessor as marketed 
by AMD. In a further embodiment, the CPU 14 is the 586 
25 microprocessor as marketed by Cyrix Corp. It is understood by 

6 
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one of ordinary skill in the technology that the present 
invention can be implemented in any processor -based system which 
employs any microprocessor that provides the use of a System 
Management Mode (SMM) , which is an operating mode that employs a 
5 dedicated interrupt line (line 50 in Figure 1) and memory space 
SMRAM 20. SMM is used to implement intelligent power management 
and other enhanced system functions in firmware in a manner 
which is completely transparent to the operating system and 
applications software. 

10 SMM is invoked by generating a System Management Interrupt 

via assertion of the SMI signal to the CPU 14. The CPU 14, in 
response, asserts the SMIACT control signal provided via line 32 
which accesses SMRAM 20. SMRAM 20 is a memory space dedicated 
and secured for use in SMM only - i.e. / the operating system and 

15 applications software do not have access to this space. The 
current CPU 14 state (context) is stored in SMRAM 20 after 
assertion of the SMIACT signal and the CPU 14 then jumps to a 
location in SMRAM 20 to execute the SMI handler code for 
performing the system management activities. Upon completion of 

20 the system management activities, the SMI handler executes a 
resume (RSM) instruction which restores the CPU 14 's context 
from SMRAM 20, de-asserts the SMIACT signal, and then returns 
control to the previously interrupted operating system or 
application program execution. 

25 Addresses asserted by the CPU 14 (Figure 1) on the address 

7 
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bus 30 are referred to in hexadecimal format, denoted by the 
suffix 'H'. The Intel microprocessor's address bus 30 is 32 
bits wide and is thus capable of addressing a four gigabyte 
system address space 50. The SMRAM 20 may be located anywhere 
5 within this system address space 50, however, as implemented in 
many chipsets (e,g., in the Falconer chipset manufactured by 
Seiko-Epson under the part designations SPC8210 and SPC8220), 
the CPU 14 is configured to automatically map the SMRAM code and 
data from physical memory to a portion of the CPU 14* s address 
10 space 50 that is below 1 Megabyte. 

Figure 2A illustrates an exemplary system address map or 
space 50 for the processor system 10 of Figure 1- The lowest 
640 Kbytes of system address, that is, 0H-9FFFF, map to system 
memory 18. System addresses AOOOOH - BFFFFH map to video memory 

15 22, System addresses COOOOH - CFFFFH map to video BIOS code. 
System addresses DOOOOH - DFFFFH and EOOOOH - EFFFFH are often 
mapped to separate PCMCIA peripheral areas respectively, or may 
be mapped to other types of peripheral devices. System 
addresses FOOOOH - FFFFFH are reserved for BIOS code. System 

20 addresses lOOOOOH (1 Megabyte) and beyond are mapped to system 
memory for applications use. 

Figure 2B illustrates an exemplary layout of SMRAM 20. The 
processor or CPU 14 pre-defines the range of addresses within 
SMRAM 20 that are used to save the CPU's 14 state (or context) 
25 when entering SMM. The CPU 14 also specifies the entry point of 

8 
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the SMI code. These locations are relative to the base address 
of the SMRAM 20 • The other areas of SMRAM 20 illustrated in 
Figure 2B are implementation-specific and left to the SMM 
programmer to define. 

5 In one embodiment, the base address of SMRAM 20 is set by 

the CPU 14 to a default value of AOOOOh. The CPU 14 defines a 
512 byte region of SMRAM starting at location AFFFFh (SMRAM base 
+ FFFFh) downward to AFEOOh for saving the CPU's 14 context. 
Once the CPU's 14 context is saved, the CPU 14 jumps to 'the 
10 entry point of the SMI handler at SMM location ASOOOh (SMRAM 

base + 8000h) . The SMI handler then executes its routine within 
SMRAM, using it to store data and stacks as required. 

Although the CPU 14 may be implemented using a number of 
designs as discussed above, for present discussion purposes, the 

15 x86 family of Intel processors will be referred to. Figures 3A 
- 3F illustrate the registers of the x86 family of processors 
which are used in the discussion of the present invention. The 
x86 family of processors each include eight thirty-two bit 
general registers EAX, EBX, ECX, EDX, ESI, EDI, EBP and ESP. 

20 The sixteen lower order bits of the AX, BX, CX, DX registers are 
independently addressable in eight bit increments as the AH 
(high), AL (low), BH, BL, CH, CL, DH and DL registers for byte 
addressing. In addition, the processors contain six sixteen bit 
segment registers which hold segment selectors that index into 

25 tables of segment descriptors in memory for determining the* 
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addresses of the segments. Two thirty- two bit registers, EFLAGS 
and EIP (instruction pointer) are used for status and control 
purposes . 

Each x86 processor also includes four registers used for 
5 memory management. A global descriptor table register (GDTR) 
stores the base address at which a global descriptor table may 
be found in memory; the global descriptor table holds the 
segment descriptors which provide a base address, a size and 
protections by which segment addressing is accomplished." A 

10 local descriptor table register (LDTR) also stores base 

addresses at which local descriptor tables may be found in 
memory; and a local descriptor table holds the segment 
descriptors by which segment addressing for individual programs 
is accomplished. A task register (TR) holds information 

15 including the address of a task state descriptor (TSS) in the 
global descriptor table which is used to switch between 
programs. An interrupt descriptor table register (IDTR) holds 
address and other information pointing to a table from which the 
addresses for interrupt operations may be determined. 

20 The processors also include four control registers CRO, 

CRl, CR2 and CR3 . The CRO register holds system control flags 
which control the modes of operation or indicate states which 
apply to the processor. The CRO register holds various control 
bits including a paging bit (31) which must be set for paging to 

25 occur and which must be cleared when paging is to be disabled. 
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In the x86 family of processors, a program is referred to 
as a task. A task is started by an exception, jump, interrupt 
or a call. When one of these instructions for transferring an 
operation is used with reference to a destination, to invoke a 
task switch, switching between programs will occur. A task 
switch transfers execution from one program to another. When 
this transfer occurs, the contents of nearly all of the 
registers used with the previous process must be saved, 
especially the contents of the EFLAGS register which contains 
the results of the conditional operations already underway. The 
state of the various tasks is saved to the task state segment 
(TSS) (see Figure 4) which is a data structure defined by a task 
state segment descriptor. A task state segment descriptor 
includes the base address of the task state segment and a busy 
bit which indicates that the task is presently running or 
waiting to run. In addition to a task state segment descriptor, 
a task gate descriptor which provides an indirect index to a 
task state segment descriptor may be used for transfer of 
control between tasks. 

To provide multitasking, a task state segment must be 
constructed and a TSS descriptor must be created and placed in 
the global descriptor table so that , the task state segment may 
be accessed and the saved state recovered. In addition, a task 
register TR must be loaded with an index to the TSS descriptor 
in the global register so that the task state segment may be 
accessed. 

11 



wo 99/18511 PCTAJS98/21088 

The x86 family of processors also provides a protection 
mechanism for accesses to the I/O address space through the use 
of an I/O bit map. Figure 4 illustrates an exemplary I/O bit 
map in a task state segment (TSS) . The I/O bit map is part of 
5 the TSS of the respective task, so that different tasks can 
refer to different I/O bit maps. The I/O map base entry in the 
TSS descriptor provides the offset within the TSS where the 
corresponding I/O bit map begins. A valid I/O bit map is 
present if the I/O map base is contained in the TSS. The I/O 
10 bit map must be created during the power-on self test (POST) or 
after an SMI has been invoked, as discussed in detail in the 
following- sect ions. The I/O bit map is examined by the CPU 14 
to determine whether the required I/O port or an I/O location 
can actually be addressed. For example, the port or location 
15 with the address 0 is associated with the bit contained in the 
map that has an offset of 0, and the port or location with the 
address 1 is associated with the bit that has an offset of 1, 
etc. When the bit in the map corresponding to the port or 
location is cleared (equals 0), and there is an access to the 
20 applicable port, the particular port or I/O location can be used 
for the task. Conversely, if the bit in the map corresponding 
to the I/O location is set (equals 1), the particular I/O 
location cannot be used, for the task. The length of the map 
sets the additional number of protected ports of I/O locations. 
25 All of the ports that are not included in the map are 

automatically assigned a set bit. An access to a port that is 
not included in the map automatically products an exception. In 

12 
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one embodiment, when using the Pentiiim processor, a total of 
(64K ports) / (8bits for every byte), that is, 8192 bytes are 
necessary to protect the complete I/O address space of the 
Pentium processor with 64 Kbytes 8-bit ports. 

The x86 family of processors support the V86 mode of 
operation by the hardware setup provided in the protected mode 
of operation. The processors are able to execute a number of 
8086 programs as virtual 8086 tasks. A virtual task is set up 
to provide in software what appears to be an 8086 environment. 
A virtual 8086 task uses the x86 processor hardware and system 
software to execute a real mode program. The processor hardware 
uses the TSS data structure to provide a virtual memory space 
and executes the instructions for that task using the processor 
hardware registers and the virtual memory. The system software 
controls the interface of any virtual task with respect to other 
tasks being executed. This system software is referred to as 
the virtual 8086 monitor. 

In order to switch to the virtual 8086 mode, the VM bit 
(17) of the CRO register must be set. (This is done 
20 automatically by a FAR JUMP to a V86 TSS) . When operating in 
the virtual 8086 mode, the processor combines the segment 
registers (CS or DS or ES or FS or GS) with the standard pointer 
registers or offsets to. form linear addresses in the same manner 
as an 8086 processor running in real mode. However, these 
25 linear addresses go through a paging unit to map to 1 Megabyte 

13 
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of physical memory, which can be anywhere in the system. Thus, 
when running a virtual 8086 task, the processor forms the V86 
mode addresses as in real mode and runs the application program 
which is the virtual task. The processor ret^lrns to protected 
5 mode in order to run the system virtual machine monitor 
software. 

As described earlier, SMM is invoked by generating a System 
Management Interrupt via assertion of the SMI signal to the CPU 
14, The CPU 14, in response, asserts the SMIACT control signal 

10 provided via line 32 which accesses SMRAM 20. In accordance 

with the principles of the present invention, the data and code 
stored in SMRAM 20 located in physical memory is first mapped 
into a location 22 that is above 1 Megabyte in the system 
address space 50, as shown in Figure 5. The current CPU 14 

15 state (context) is stored in SMRAM 20 after assertion of the 
SMIACT signal- The CPU 14 then jumps to the location in SMRAM 
20 that is above 1 Megabyte in the system address space 50 to 
execute the SMI handler code for performing the system 
management activities. 

20 The SMI handler is then configured to begin execution of 

SMI code with the CPU 14 in the SMM mode. In particular, the 
SMI handler performs a NEAR JMP to a location 24 that is still 
above 1 Megabyte in the system address space 50, as shown in 
Figure 6, where a CPU 14 mode change is accomplished. • The 

25 location 24 must be within 64 Kbytes of the location 22. The 
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SMI handler then issues a control signal to the CPU 14 to 
configure the CPU 14 to operate in the protected mode. In one 
enibodiment , this is accomplished by setting bit 0 in the CRO 
register is to 1. 

5 In one embodiment, the SMI handler is then configured to 

create page tables that are required when utilizing the paging 
feature of the CPU 14. The page tables are located in an area 
of system memory 18 (Figure 1) • Each page table contains 1024 
entries that point to the starting address of 1024 individual 
10 pages. 

The SMI handler is also configured to create a TSS and an 
I/O bit map that is required when utilizing the task state 
segment (TSS) feature of the CPU 14. The use of the I/O bit map 
provides a protection mechanism for access to the I/O address 
15 space. As described earlier, the I/O bit map is stored in the 
TSS of the task invoked. 

In an alternate embodiment, the page tables and the I/O bit 
map may be created during the power-on self test (POST) , prior 
to invocation of SMM. In this alternate embodiment, the page 
20 tables and the TSS and I/O bit map only have to be created once, 
and they are not deleted upon completion of the SMM activities. 
In addition, in either embodiment, the page tables may be 
created without creating the TSS and I/O bit map at the same 
time. Conversely, the TSS and I/O bit map may be created 
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without creating the page tables at the same time. 

Once the page tables and the TSS and I/O bit map have been 
created, then the SMI handler invokes the paging feature of the 
•CPU 14. In one embodiment, this is performed by setting bit 31 
5 in the CRO register of the x86 processor as marketed by Intel 
Corp. The SMI handler then switches the CPU 14 to the virtual 
mode. In one embodiment, this may be performed by executing a 
FAR JMP to the TSS for switching to the virtual mode. In 
addition, the physical memory area above 1 Megabyte is mapped 
10 virtually to the first Megabyte of the task's linear address 
space. As a result, a task switch is invoked to change the 
operational mode of the processor 14 to the virtual mode, above 
the 1 Megabyte boundary. 

Once in virtual mode, the CPU 14 determines the logical 
15 address of the application the same way as in real mode. The 
physical address is determined by using the page tables. The 
SMI handler then begins to perform the task required to process 
the system management activities. During execution of the 
system management activities, the software occasionally 
20 configures the processor to operate in the protected mode so as 
to facilitate the execution of certain special tasks. These 
special tasks include cache flushes and the accessing of the 
floating point unit in the arithmetic logic unit, as is known by 
one of skill in the art. If so, the SMI handler configures the 
25 CPU 14 to operate in protected mode. Once thus configured, the 

16 
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CPU 14 may process the special task(s) . Upon completion of the 
special task(s), the SMI handler configures the CPU 14 to 
operate in virtual mode so that system management activities may 
resume . 

5 Upon completion of the system management activities, the 

SMI handler configures the CPU 14 to exit the virtual mode, 
which also configures the CPU 14 to operate in the protected 
mode again. Paging is then disabled by clearing the PG bit, bit 
31 (see Figure 3G) • The SMI handler then executes a resume 
10 (RSM) instruction which restores the CPU 14 's context in SMRAM 
20, de-asserts the SMIACT signal, and then returns. control to 
the previously interrupted operating system or application 
program execution. 

Figures 7A and 7B are flowcharts illustrating one 
15 embodiment of the process of the present invention. Beginning 
from a start state, the process SlOO proceeds to process step 
S102, where SMM is invoked through the issuance of an SMI. The 
process SlOO then proceeds to process step S104, where in 
particular, the data and code stored in SMRAM 20 located in 
20 physical memory is first mapped into a location 22 that is above 
1 Megabyte in the system address .space 50. The current CPU 14 
state (context) is stored in^ SMRAM 20. The SMI handler then 
initiates execution of the SMI code above 1 Megabyte while the 
CPU 14 is still operating in SMM mode, as shown in process step 
25 S106. In particular, the SMI handler performs a NEAR JMP to a 
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location that is still above 1 Megabyte in the system address 
space 50. The process SlOO then proceeds to process step S108, 
■where the SMI handler then issues a control signal to the CPU 14 
to configure the CPU 14 to operate in the protected mode. The 
5 SMI handler then creates page tables and an I/O table (process 
step SllO). Alternatively, the page tables an the I/O table may 
be created during POST. Next, the SMI handler invokes the 
paging feature of the CPU 14 (process step S112) . The process 
SlOO then advances to process step S114, where the SMI handler 
10 configures the CPU to. operate in virtual mode. The SMI handler 
then proceeds to process the SMI and to perform system 
management activities, as shown in process step S116. 

During execution of the system management activities, the 
software occasionally reconfigures the processor to operate in 

15 the protected mode so as to facilitate the execution of certain 
special tasks (decision step S118) . These special tasks include 
cache flushes and the accessing of the floating point unit in 
the arithmetic logic unit, as is known by one of skill in the 
art. If so, the process SlOO proceeds to process step S120, 

20 where the SMI handler configures the CPU 14 to operate in 

protected mode. Once thus configured, the CPU 14 may process 
the special task(s) (process step S122) . Upon completion of the 
special task(s), the SMI handler configures the CPU 14 to 
operate in virtual mode. The SMI handler then proceeds to 

25 decision step S126, If, as decision step S118, the process SlOO 
determines that there are no special tasks that have to be 

18 
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performed, the process SlOO proceeds directly to decision step 
S126. 

At decision step S126, the process SlOO queries if all 
system management activities have been completed. If not, the 
5 process SlOO proceeds to process step S116, where it continues 
processing system management activities. If all system 
management activities have been completed, the SMI handler 
configures the CPU 14 to exit virtual mode (process step S128) 
and then configures the CPU 14 to operate in the protected mode 

10 -again. Paging is then disabled (process step S130) . If the 
page tables and the I/O table were created after invocation of 
the SMI and not during post, the process SlOO proceeds to 
process step S132 to delete the page tables -and the I/O table. 
Next, the SMI handler executes a resume (RSM) instruction which 

15 restores the CPU 14 's context to SMRAM 20 (process step S134). 
The process SlOO then returns control to the previously 
interrupted operating system process or application program 
execution, as shown in process step S136. The process SlOO then 
terminates. 

20 Through the use of the present invention, an apparatus and 

method for efficiently executing code within a system management 
mode is provided. In particular, the present invention 
facilitates the execution of code within a system management 
mode without duplication of programming code, increase use of 

25 memory or increased maintenance. The use of the present 

19 
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invention facilitates the implementation of code that is simple, 
compact and is easy to debug. 

Although the present invention has been described in terms 
of certain preferred embodiments, other embodiments apparent to 
those of ordinary skill in the art are also within the scope of 
this invention. Accordingly, the scope of the invention is 
intended to be defined only by the claims which follow. 
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What is claimed is: 

1 !• An apparatus for executing instructions in a system 

2 management mode in a processor-based system, comprising: 

3 a memory for storing instruction sequences by which 

4 the processor-based system is processed; 

5 a processor having a system address space, the 

6 processor for executing the stored instruction sequences; and 

7 wherein the stored instruction sequences include 

8 process steps to cause the processor to: (a) configure the 

9 processor to operate in a protected mode while in system 

10 management mode, the processor operating at an address greater 

11 than one megabyte; (b) invoke a paging feature of the processor; 

12 (c) configure the processor to operate in a virtual mode; and 

13 (d) process the instruction sequences stored, wherein the 

14 process steps occur upon the receipt of an instruction to 

15 process a system management request. 

1 2. The apparatus of Claim 1, wherein step (b), comprises 

2 the steps, of: 

3 (b^l) creating at least one page table; and 

4 (b.2) invoking a paging feature of the processor. 



1 



3. The apparatus of Claim 1, further comprising the step 
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2 of creating at least one page table prior to step (a). 

1 4. The apparatus of Claim 1, wherein step (a), comprises 

2 the steps of: 

3 (a.l) performing a near jump to a second location; 

4 and 

5 (a. 2) configuring the processor to operate in a 

6 protected mode. 

1 5. The apparatus of Claim 1, further comprising the steps 

2 of: 

3 {e) determine if control should be transferred to 

4 instruction sequences for executing a task that requires the 

5 processor to be configured to operate in protected mode; 

6 (f ) if so, configuring the processor to operate in 

7 the protected mode, and executing the instruction sequences for 

8 executing the task; and 

9 (g) otherwise to continue to process the instruction 
10 sequences stored. 

. 1 6, The apparatus of Claim 5, further comprising the steps 

2 of: 

3 (h) determining if execution of instruction sequences 

4 pertaining to system management activities have been completed; 

5 and 

6 (i) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

22 
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8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 
10 sequences pertaining to system management activities. 

1 • 7. The apparatus of Claim 5, further comprising the steps 

2 of: 

3 (h) restoring the processor's context in memory; and 

4 (i) returning to a calling function. 

1 8. The apparatus of Claim 7, further comprising the steps 

2 of: 

3 (j) deleting the at least one page table; 

4 (k) restoring the processor's context in memory; and 

5 (1) returning to a calling function, 

1 9. The apparatus of Claim 1, further comprising the steps 

2 of: 

3 (e) determining if execution of instruction 

4 sequences pertaining to system management activities have been 

5 completed; and 

6 (f) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 
10 sequences pertaining to system management activities. 



1 



10. The apparatus of Claim 9, further comprising the steps 
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2 of: 

3 (g) restoring the processor's context in memory; and 

4 (h) returning to a calling function. 

1 11. A method for executing instructions in a system 

2 management mode in a processor-based system, comprising the 

3 steps of: 

.4 (a) configuring a processor to operate in a 

5 protected mode, while in system management mode, the processor 

6 operating at an address greater than one megabyte; 

7 (b) invoking a paging feature of the processor; 

8 (c) configuring the processor to operate in a 

9 virtual mode; 

10 (d) processing the instruction sequences stored in 

11 the first location; and 

12 wherein the process steps occur upon the receipt of an 

13 instruction to process a system management request. 

1 12. The method of Claim 11, wherein step (b) , comprises 

2 the steps of: 

3 (b.l) creating at least one page table; and 

4 (b.2) invoking a paging feature of the processor. 

1 13. The method of Claim 11, further comprising the step of 

2 creating at least one page table prior to step (a) . 

1 14. The method of Claim 11, wherein step (a), comprises 

24 
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2 the steps of: 

3 (a.l) performing a near jump to a second location;. 

4 and 

5 (a, 2) configuring the processor to operate in a 

6 protected mode, 

1 15. The method of Claim 11, further comprising the steps 

2 of: 

3 (e) determine if control should be transferred to 

4 instruction sequences for executing a task that requires the 

5 processor to be configured to operate in protected mode; 

6 (f) if so, configuring the processor to operate in 

7 the protected mode, and executing the instruction sequences for 

8 executing the task; and 

9 (g) otherwise to continue to process the instruction 
10 sequences stored. 

1 16. The method of Claim 15, further comprising the steps 

2 of: 

3 (h) determining if execution of instruction 

4 sequences pertaining to system management activities have been 

5 completed; and 

g (i) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 

10 sequences pertaining to system management activities, 
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1 17. The method of Claim 15, further comprising the steps 

2 . of: 

3 (h) restoring the processor's context in memory; and 

4 (i) returning to a calling function. 

1. 18. The method of Claim 17, further comprising the steps 

2 of: 

3 (j) deleting the at least one page table; 

4 (k) restoring the processor's context in memoiy; and 

5 (1) returning to a calling function. 

1 19. The method of Claim 11, further comprising the steps 

2 of: 

3 (e) determining if execution of instruction 

4 sequences pertaining to system management activities have been 

5 completed; and 

6 (f) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 
10 sequences pertaining to system management activities. 

1 20. The method of Claim 19, further comprising the steps 

2 of: 

3 (g) restoring the processor's context in memory; and 

4 (h) returning to a calling function. 
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1 21. Computer-executable process steps for executing 

2 instructions in a system management mode in a processor-based 

3 system, comprising the steps of: 

4 (a) configuring the processor to operate in a 

5 protected mode while in system management mode, the processor 

6 operating at an address greater than one megabyte; 

7 (b) invoking a paging feature of the processor; 

8 (c) configuring the processor to operate in a 

9 virtual mode; 

10 (d) processing the instruction sequences stored in 

11^ the first location; and 
. 12 wherein the process steps occur upon the receipt of an 

• 13 instruction to process a system management request. 

1 22, Computer- executable process steps of Claim 21, wherein 

2 step (b) comprises the steps of: 

3 (b.l) creating at least one page table; and 

4 {b.2) invoking a paging feature of the processor. 



23. Computer-executable process steps of Claim 21, further 
comprising the step of creating at least one page table prior to 
step (a) . 

24. Computer-executable process steps of Claim 21, wherein 
step (a) comprises the steps of: 

(a.l) performing a near jump to a second locations 
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4 and 

5 (a. 2) configuring the processor to operate in a 

6 protected mode. 

1 • 25. Computer-executable process steps of Claim 21, further 

2 comprising the steps of: 

3^ (e) determine if control should be transferred to 

4 instruction sequences for executing a task that requires the 

5 processor to be configured to operate in protected mode; 

6 (f) if so, configuring the processor to operate in 

7 the protected mode, and executing the instruction sequences for 

8 executing the task; and 

9 (g) otherwise to continue to process the instruction 
10 sequences stored. 

1 26. Computer-executable process steps of Claim 25, further 

2 comprising the steps of: 

3 (h) determining if execution of instruction 

4 sequences pertaining to system management activities have been 

5 completed; and 

6 (i) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 
10 sequences pertaining to system management activities. 

1 27. Computer-executable process steps of Claim 25, further 

28 



wo 99/18511 PCT/US98/21088 

2 comprising the steps of : 

3 (h) restoring the processor's context in memory; and 

4 (i) returning to a calling function, 

1 -28. Computer-executable process steps of Claim 27, further 

2 comprising the steps of: 

3 (j) deleting the at least one page table; 

4 (k) restoring the processor's context in memory; and 

5 (1) returning to a calling function. 

1 29. Computer-executable process steps of Claim 21, further 

2 comprising the steps of: 

3 (e) determining if execution of instruction 

4 sequences pertaining to system management activities have been 

5 completed; and 

6 (f) if so, configuring the processor to disable 

7 operation in the virtual mode, configuring the processor to 

8 operate in the protected mode, and configuring the processor to 

9 disable paging; otherwise continuing to execute instruction 
10 sequences pertaining to system management activities. 

1 30. Computer-executable process steps of Claim 29, further 

2 comprising the steps of: 

3 (g) restoring the processor's context in memory; and 

4 (h) returning to a calling function. 



29 



wo 99/18511 



1 / 11 



PCT/US98/21088 




wo 99/18511 



2 / 11 



PCTAJS98/21088 



FIG. 2A 

4GBYfr" 



2MBYTE 
TMBfTr' 



r 



640KBYTES < 



FFFFFFFFH 


100BFFFFH 




100A0000H 


SMRAM 


« 
• 


10000000H 


SYSTEM MEMORY 






FFFFFH 




FOOOOH 


BIOS 


EFFFFH 




EOOOOH 


PCM/CIA 


OFFFFH 




DOOOOH 


PCM/CIA 


CFFFFH 




COOOOH 


VIDEO BIOS 


BFFFFH 




AOOOOH 


VIDEO RAM 


9FFFFH 






SYSTEM MEMORY 


0 





SO 



•TOP OF 
SYSTEM 
MEMORY 



DXXXXH 



^ AXXXXH 



wo 99/18511 



3 / 11 



PCT/US98/21088 



FIC.2B 



AFFFh 
AFEOh 



CPU CONTEXT 



DEVICE CONTEXT 



ASOOOh 



LOCAL STACK 



LOCAL STORAGE 



SMI CODE 



ADDITIONAL 
SPACE 



CPU SAVE STATE AREA 



SMI HANDLER 



SMI HANDLER ENTRY POINT 



AOOOh 



wo 99/18511 



4 / 11 



PCT/US98/21088 



GENERAL PURPOSE REGISTERS 



FIG. 3 A 



31 16 


15 8 


7 ( 


3 




AH 


AL 


EAX 




BH 


BL 


EBX 




CH 


CL 


ECX 




DH 


OL 


EDX 




SI 


ESI 




Dl 


EOl 




BP 


EBP 




SP 


ESP 



FIG. 3B 



SEGMENT REGISTERS 
15 0 

CS 
SS 
DS 
ES 
FS 
GS 



FIG. 3C ( 



STATUS & CONTROL REGISTERS 
31 16 15 0 



IP 



]EIP 



FLAG 



EFUGS 



wo 99/18511 



5 / 11 



PCT/US98/21088 



FIG. 3D 



SYSTEM ADDRESS REGISTERS 

16 15 0 



GDTR 
IDTR 



32-BIT UNEAR BASE ADDRESS 


SIZE 


32-BIT UNEAR BASE ADDRESS 


SIZE 



FIG. 3E 



SYSTEM 
SEGMENT 
REGISTERS 



DESCRIPTOR REGISTERS 



TR 



LDTR 



'15 0 


^ f 








SELECTOR 




32-6IT UNEAR 
BASE ADDRESS 


20-BIT 
SIZE 


AHRIBUTE 








SELECTOR 




32-BIT UNEAR 
BASE ADDRESS 


20-BIT 
SIZE 


AHRIBUTE 



FIG. 3F 



31 . 0 



CRO 




MSW 


CR1 


RESERVED 


CR2 


PAGE FAULT UNEAR ADDRESS 


CR3 


PAGE DIRECTORY BASE 


ADDRESS 




CR4 

















wo 99/18511 



6 / 11 



PCT/US98/21088 



o 
u 

2 



O 



o 

CD 



S5 



eg 



Ul 
CL 



2 

> 



X 

o 

CO 

en 
< 



si o 

<i 



UJ 

»- 
o 

UJ 

o 

Of 

CL 




u 

O 
O 



< 

> 



wo 99/18511 



7 / 11 



PCTAJS98/21088 



O 
ui 
to 

en 

CO 

< 



CD 
Z 

o 

tn 
to 

Z 



OH- 

CO o 

a. 

o 



o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 



Ul 

in 
< 

CD 

0. 
< 



01 

o 

I- 

o 

in 



o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 



o 
o 



in 

00 

o 



o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 



o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 



o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 
o 



to 
o 

LJ 

to 
< 



wo 99/18511 



8 / 11 



PCT/US98/21088 



FIG. 5 



TOP OF MEMORY 



22 



1 Mb- 



SYSTEM ADDRESS 
SPACE 50 



HIGH 



MAPPING 
CAUSED BY SMI 



LOW 




PHYSICAL 
MEi^ORY 



9 / 11 



PCTAJS98/21088 



FIG. 6 



TOP OF 
MEMORY 



SMRAM 
2^ 




LOCATION 
24 



1 Mb- 



NEAR JUMP 
IN REAL MODE 



SYSTEM ADDRESS 
SPACE 50 



wo 99/18511 



10 / 11 



PCT/US98/21088 



HG. 7A C^D 







SMM INVOKED THROUGH AN SMI 



THE DATA AND CODE STORED IN SMRAM IS MAPPED INTO A 
LOCATION THAT IS ABOVE 1 MBYTE IN THE THE (CPU's) SYSTEM 

ADDRESS SPACE 



s/os 



THE SMI HANDLER INITIATES EXECUTION OF CODE ABOVE 
I MBYTE, IN SMM MODE: PERFORM NEAR JMP 



S/08 



THE SMI HANDLER CONFIGURES THE CPU TO OPERATE IN 
PROTECTED MODE 



1 



'Srfo 



CREATE PAGE TABLES AND AN I/O MAP: ALTERNATIVELY, THE 
PAGE TABLES AND I/O MAP MAY 8E CREATED DURING POST 



I 



srf2 



THE SMI HANDLER INVOKES THE PAGING FEATURE OF THE CPU 



'Stf4 



THE SMI HANDLER CONFIGURES THE CPU TO OPERATE IN VIRTUAL 

MODE 



I 




B 



PERFORM SYSTEM MANAGEMENT ACTIVITIES 



® 



wo 99/18511 11 / 11 PCT/US98/21088 



FIG. 7B 



CPU HAVE TO 

BE RECONFIGURED TO 
OPERATE IN PROTECTED MODE 
JO PERFORM SPECIAL, 
JASI«?, 

YES 



NO 



RECONHGURE CPU TO OPERATE IN PROTECTED MODE 



PERFORM SPECIAL TASK(S) 
t 



UPON COMPLETION OF SPECIAL TASK(S). CONFIGURE 
CPU TO OPERATE IN VIRTUAL MODE 




THE SMI HANDLER CONFIGURES THE CPU TO EXIT 
VIRTUAL MODE. 



T 



StJO 



THE SMI HANDLER CONFIGURES THE CPU TO OPERATE 
IN PROTECTED MODE. CONFIGURE THE CPU TO 
DISABLE PAGING. 



I 



SfJ2 



THE PAGE TABLES AND I/O MAP ARE DELETED (IF 
PACE TABLES AND I/O MAP WERE CREATED DURING 
POST, NO NEED TO DELETE TABLES AND MAP) 



I 



S/J4 



THE SMI HANDLER EXECUTES A RESUME INSTRUCTION 
WHICH RESTORES THE CPU's CONTEXT iN SMRAM 



StJS 



RETURN TO PREVIOUSLY INTERRUPTED 
OPERATING SYSTEM PROCESS OR 
APPLICATION PROGRAM EXECUTION 



(jnT) 



INTERNATIONAL SEARCH REPORT 



U laUonal Application No 

PCT/US 98/21088 



A. CLASSIFICATION OF SUBJECT MATTER . 

IPC 6 606F12/10 G06F9/46 



According to tntemational Patent Classification (IPC) or to bo\t\ national classification and IPC 



B. FIELDS SEARCHED 



Minimum documentation searched (classification system followed by classiflcatton symbols) 

IPC 6 G06F 



Documentation searched other than minimum documentation to the extent that such documents are Included in the fields searched 



Electronic data base consulted during the International search (name of data base and, where practical, search terms used) 



C. DOCUMENTS CONSIDERED TO BE RELEVANT 



Categoiy " Citation of document, with indication, where appropriate, of the relevant passages 



Relevant to claim No. 



EP 0 768 603 A (CYRIX CORP) 16 April 1997 
see abstract 

see page 7, line 32 - page 13, line 44; 
figures 6A,6B 

US 5 671 422 A (DATTA SHAM M) 
23 September 1997 
see abstract 

see column 3, line 11 - line 50 

"CACHE FREEZE FUNCTION IN LEVEL 2 CACHE 
CONTROLLER" 

IBM TECHNICAL DISCLOSURE BULLETIN, 
vol. 37, no. 12, 1 December 1994, page 
467/468 XP000487854 
see the whole document 



1.11.21 



1,11,21 



1,11,21 



□ 



Further documents are listed In the continuation of box C. 



ID 



Patent family membGrs are listed in annex. 



* Special categories of dted documents : 

*A' document defining the general state of the art which is not 

considered to be of particular relevance 
*E" earlier document but published on or after the internatlortai 

filing date 

•L" document which may throw doubts on priority claim(8) or 
which is cited to establish the publication date of another 
citation or other special reason (as specified) 

"O" document referring to an oral disclosure, use, exhibition or 
other means 

"P' document published prior to the international filing date but 
later than the priority date daimed 



T" later document published after the international filing date 
or priority date and not in conflict with the application but 
cited to understand the principle or theory underfying the 
invention 

*X" document of particular relevance; the claimed invention 
cannot be considerad novel or cannot be considered to 
involve an inventive step when the document is taken atone 

"Y" document of particular relevance; the claimed Invention 

canrxjl be considerad to Involve an Inventive step when the 
document is combined with one or more other such docu* 
ments, such combination being obvious to a person skilled 
in the art. 

document member of the same patent family 



Date of the actual completion of the intemattonal search 



9 March 1999 



Data of mailing of the International aaareh raport 



17/03/1999 



Name and mailing address of the ISA 

European Patent Office, P.B. 5518 Patentlaan 2 

NL-2260HVRiiSwilk 

Tel. (-t^SI-TO) 340-2040, Tx. 31 651 epo ni. 

Fax: (+31-70) 340-3018 



Authorized officer 



Ulltink, J 



Fbm PCT/ISAaiO (sooond ahMt) <July 1S92) 



I^aERNATIONAL SEARCH REPORT 



Information on patent family members 


In ittonol Application No 

PCT/US 98/21088 


Patent document 
cited in search report 


Publication 
date 


Patent family 
member(s) 


Publication 
date 



EP 0768603 A 16-04-1997 US 5764999 A 09-06-1998 

JP 9128249 A 16-05-1997 



US 5671422 A 23-09-1997 NONE 



Pom PC7/I8M1P (pmnl imly vimx) (July 1M2) 



